FormBook2

FormBook MaaS 2017 $59. HTTP form hijack. Browser credential+clipboard+screenshot. 2020 resource leak.

Threat Profile
Type Infostealer
Programming LanguageC
C2 ProtocolHTTP
First Seen2016
Targets Kuresel
Purpose / Capabilities
  • Form Grabber+Keylogger
No C2 servers have been identified for this family yet.

Research Reports (2)

High

FormBook -- Purchase_Order_Form.js 1.97MB Obfuskasyon, Viewport Metrics Yorum Kalıntısı | Yüksek

FormBook 1.97MB Purchase_Order_Form.js. Obfuskasyon kalıntısı "aggregate viewport metrics" yorum. JS stealer dropper.

Read Report →
High

FormBook -- dstq.exe 287KB Rastgele Ad Stealer, Chrome+IE Credential Toplama | Yüksek

FormBook 287KB dstq.exe. Chrome/IE credential toplama. Rastgele ad dropper. MaaS stealer 2016.

Read Report →